SCHIESSER Online Shop – Privacy Policy
(Last updated: 14.10.2024)
Thank you for your interest in our online shop, ”SCHIESSER Online Shop”, and our company, SCHIESSER GmbH. We want you to feel safe and comfortable when visiting our web pages. Therefore, protecting your personal data is very important to us. We have taken all possible technical and organisational measures to ensure that the data protection regulations as per the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and other legal regulations are complied with by us as well as by service providers.
The following privacy policy is intended to inform you about our handling of the collection, use, processing and disclosure of your personal data. In general, you can visit our websites without providing any personal data, e.g. if you only want to find out about our products and visit the relevant pages. Each visit to our homepage, as well as each retrieval of a file stored on the homepage, is logged. This data is saved for internal system-related and statistical purposes. The following data is logged: name of the retrieved file, date and time of the query, transferred quantity of data, report of successful query, web browser and inquiring domain. However, no personal data is transmitted by you and this information is stored separately from any personal data that may be transmitted. The IP addresses of the enquiring computers are also stored.
You can contact us at:
SCHIESSER GmbH
Schützenstraße 18
Postfach (PO Box) 15 20
78305 Radolfzell
Germany
Tel. +49 (0) 7732/90-0
Fax +49 (0) 7732/90-65 55
URL: www.schiesser.com
E-Mail: info@schiesser.com
Personal data is pieces of information pertaining to your identity. These include information such as your name, address, phone number, date of birth and email address. Below you will find detailed information about which of your data we process and for what purposes.
There is no legal or contractual obligation to provide the data specified below. However, providing data for the purposes specified below is necessary. If the data specified below is not provided, we will unfortunately be unable to process requests and orders, conduct advertising measures and competitions, etc.
If you provide us with personal data in our online shop, we will process and use it to process your order (the legal basis for this is Art. 6 para. 1 lit. b GDPR), to answer your enquiries (the legal basis for this is Art. 6 para. 1 lit. b GDPR), for competitions (the legal basis for this is Art. 6 para. 1 lit. b GDPR), for advertising measures (the legal basis for this is Art. 6 para. 1 lit. a and f GDPR), in particular the sending of newsletters, if you have separately agreed to this, in order to provide you with access to certain information or offers or for the use of information and communication systems as well as within the scope of legal requirements (the legal basis for this is Art. 6 para. 1 lit. a and f GDPR).
Your personal data will only be transferred or disclosed to third parties if this is necessary for the fulfilment of your order, e.g. for the shipping of your ordered goods or if you have given your prior consent to the transfer. These third parties are not permitted to use the data for other purposes. We also reserve the right to match or complete your personal data with data that we receive from third parties for the same purpose.
We will disclose personal data about you if we are legally obliged to do so (the legal basis for this is Art. 6 para. 1 lit. c GDPR), or if we are obliged to do so by a court decision, or if disclosure is necessary to enforce or protect our general terms and conditions or other agreements (the legal basis for this is Art. 6 para. 1 lit. f GDPR). This applies accordingly with respect to the processing of the data.
The data will not be disclosed for commercial purposes.
Our employees and the service providers engaged by us are bound by us to secrecy and observance of the
provisions of the current data protection laws. Access to personal data by our employees is limited to those
employees who require the data for their work.
We endeavour to take all possible technical and organisational measures to store your personal data so that it is not accessible to third parties. When communicating via email we cannot guarantee full data integrity. We therefore recommend that you send us any confidential information by post.
Contact form
In our "contact form", the information listed is requested from you, for example your enquiry, surname,
first name, email address, telephone number, etc.
You can find further information about this form under point 5.
Newsletter registration
When you sign up for the newsletter, your email address will be used for our own advertising purposes
with your consent. You can find further information about the newsletter under point 6.
Cancellation form
You can use the cancellation form to cancel a contract. You will be asked to fill out the fields in this
form, in particular the mandatory fields email address, title, first name, surname, address, postcode
and city. Order number, item number(s) and the date you received the goods.
Gift voucher
You can use the gift voucher form to send a gift voucher to yourself or the gift recipient via email.
Here
you will be asked to enter who the voucher is from, to whom it is being sent and a personal message.
You will also need to provide the email address that you want the voucher to be sent to. Later on in
the voucher order process, you will also be asked to provide the data under point f.
Application
You can find information on your application under point 7.
f. Orders and/or registration
If you order goods in our online shop without creating a customer account, you will need to provide us
with the following data: first name, surname,postal address, billing address, shipping address (if this
differs from the billing address), date of birth and email address.
You also have the option to create a customer account. To set up your personal customer account, we
need the following information from you: surname, first name, address, email address and a password
of your choice. When you click on “register”, your data will be saved in our database. After
registering,
you will receive an automatic email confirmation that your customer account has been set up. The
email address you enter and the password you choose will serve as access identification for the
customer account. You can edit your information in your customer account at any time. The access
identification and password must be kept secret and not be shared with third parties. You are obliged
to protect your access identification and password against unauthorised access by third parties.
The above-mentioned address information for orders is also saved in your customer account.
Finally, we will ask you to select a payment method for the order.
g. Competitions
For competitions, we collect the information needed to contact you if you win. Such information may
include your title, first name, surname and email address. If you wish, you may also provide us with
your name. This helps us to better plan our competitions in future. In the context of your participation
in competitions, you can also choose to register for our newsletter. Please note the above information
for this.
We only process and use the data that we collect through the contact form to contact you in relation to the wishes expressed there, to provide you with information material or to process your enquiry. In doing so, we obtain your consent in accordance with Art. 6 (1) lit. a GDPR.
We offer you the chance to receive a newsletter providing information on the latest fashion trends,
our current deals and interesting special promotions in our online shop, as well as promotions in our
SCHIESSER stores and factory outlets.
When you sign up for the newsletter, your email address is used for our own advertising purposes
with your consent. In doing so, we obtain your consent in accordance with Art. 6 (1) lit. a GDPR.
We use specialised service providers to send our newsletters, and the personal data required for
this purpose is transferred to them. These service providers process your personal data only on our
behalf and on our instructions. We guarantee compliance with data protection regulations and the
necessary security measures.
The aforementioned consent to receive a newsletter by email is revocable at any time. A link for
revoking your consent is provided in every newsletter.
As a precautionary measure, please note that receiving and/or cancelling the newsletter usually
incurs no transmission costs other than those in the basic tariff. However, there may be situations in
which the flat rates common today no longer apply (such as in non-European countries).
Internal recipients:
Departments and persons who need to know this data in order to fulfil their tasks and the above-mentioned purposes
External recipients (in addition to the recipients already presented in this information, we may pass on data to the following external recipients – order processors and third parties – in particular, but only if there is a legal basis for doing so – in particular pursuant to Art. 6 para. 1 lit. a, b, c or f GDPR, see above – or if there are legally compelling reasons):
service providers that are necessary for the provision of our services (in particular IT service providers, consulting companies)
companies/institutions to assist us in enforcing our claims (e.g. debt collection companies)
public bodies and institutions (health offices, courts)
investigating authorities (police, public prosecutor)
vicarious agents
Google Analytics
Insofar as you have given your consent, this website uses Google Analytics 4, a web analysis
service provided by Google LLC. The responsible body for users in the EU/EEA and Switzerland
is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5,
Ireland (‘Google’).
Extent of processing
Google Analytics uses cookies, which enable analysis of your use of our websites. The
information about your use of the website collected by means of the cookies is typically
transmitted to a Google server in the USA and stored there.
We use the user ID function. The user ID enables us to assign a unique, permanent ID to one or
more sessions (and the activities within these sessions) and to analyse user behaviour across
devices.
We use Google Signals. This means that more information about users who have activated
personalised ads (interests and demographics) is collected in Google Analytics and ads may be
delivered to these users in multi-device remarketing campaigns.
Google Analytics 4 activates the anonymisation of IP addresses in the standard version. IP
anonymisation causes your IP address to be truncated prior to being transmitted to the USA by
Google within member states of the European Union or other states party to the Agreement on
the European Economic Area. The complete IP address is only transmitted to a Google sever in
the USA and truncated there in exceptional cases. According to Google, the IP address
transmitted by your browser in line with Google Analytics is not merged with other Google data.
During your website visit, your user behaviour is recorded in the form of “events”. Events may
be:
Dymatrix
We process data about your usage behaviour in order to provide our customers with personalised
content and product recommendations on our website. The data required for this is collected by the
Dymatrix service, pseudonymised and assigned to a customer segment. It is no longer possible to
draw conclusions about individual persons.
The purpose of the processing is to calculate recommendations for customer segments.
Pseudonymous user profiles are created based on the various data collected during your visit to our
online services. These are:
Trbo
Our website collects and stores data provided by
(http://www.trbo.com/),
Leopoldstr. 41, 80802 Munich to create user profiles using pseudonyms in order to offer you personalised services.
customer benefits. Cookies that enable the recognition of an internet browser may be used for this
purpose. These usage profiles aid in the analysis of visitor behaviour and are evaluated to allow us
to improve our offerings and adapt them to demand. The pseudonymised usage profiles are not
consolidated with personal data of the pseudonym holder without the express consent of the data
subject, which must be given separately. You can object to this at any time via the following links:
Active trbo
Deactive trbo
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG.
ChannelPilot
This website uses ChannelPilot, an online marketing tool of Channel Pilot Solutions GmbH.
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG.
ChannelPilot uses cookies – text files which are stored on your computer and enable the analysis of
your use of the website. The information generated by the cookies about your use of the website,
such as
Microsoft Ads
We use Microsoft technologies (Bing Ads) (bingads.microsoft.com) on our website, which are
provided and operated by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399,
USA (‘Microsoft’). Microsoft saves a cookie to your device for this purpose if you were redirected to
our website via a Microsoft Bing advertisement. This allows us and Microsoft to determine that
somebody clicked on an advertisement, was redirected to our website and reached a predefined
target page (conversion page). We only receive information on the total number of users who have
clicked on a Microsoft Bing advert and were then forwarded to the conversion site. Via the cookie,
Microsoft collects, processes and uses information which allows it to create usage profiles using
pseudonyms. These usage profiles aid in the analysis of visitor behaviour and are used to present
advertisements. No personal information about the identity of the user is processed.
If you do not want Microsoft to use the information about your behaviour as explained above, you
can reject the cookie required for this purpose – for example using the browser setting which blocks
all cookies. You can further prevent the collection of the data related to your use of the website
generated by the cookie and prevent Google from processing this data by installing the browser
plugin available under the following link:
http://choice.microsoft.com/de-DE/opt-out.
More information on data protection and the cookies used by Microsoft and Microsoft Bing Ads is available on the Microsoft website at
https://privacy.microsoft.com/de-de/privacystatement.
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG.
Google Ads and Google Remarking
We also use Google Conversion Tracking, an analysis service of Google Inc, on the website. (1600
Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). In this case, Google Ads sets a
(conversion) cookie on your device if you have reached our website via a Google ad. These cookies
expire after 30 days and do not enable personal identification of users. If you visit certain pages of
ours and the cookie has not yet expired, we and Google are able to recognise that someone clicked
on the ad and was redirected to our page as a result. Each Google Ads customer receives a
different cookie. As a result, cookies are not tracked across the websites of different Google Ads
customers. The information obtained via the conversion cookies allow conversion statistics to be
compiled for us. As a Google Ads customer, we see the total number of users who clicked on our ad
and were redirected to a page with a conversion tracking tag. However, we do not receive any
information that reveals the personal identity of users.
If you do not want information about your behaviour on the website to be processed in the tracking
procedure, you can also reject the cookie required for this purpose – for example using the browser
setting which blocks all cookies. You can also deactivate cookies for conversion tracking by
adjusting your browser settings to ensure that cookies from the domain “googleadservices.com” are
blocked.
We also use the Google Ads Enhanced Conversions function. This serves to optimise our
advertising efforts in the Google advertising network. The purpose of this is to better identify groups
of people within the Google advertising network who are most likely to conduct conversion events
(e.g. purchase transactions) on our website. The conversion results are supplemented with
additional first-party data for this purpose. This data is then transferred to Google in hashed form.
This procedure supports data protection, as only the hashed / pseudonymised (SHA256) character
string is transmitted to Google, not the actual data.
Google also offers you the chance to deactivate Google’s use of cookies for advertising purposes in the ads preferences. You can find these at
https://www.google.com/settings/ads.
Alternatively, you can deactivate the use of cookies by third parties by accessing the deactivation page of the Network Advertising Initiative:
http://www.networkadvertising.org/choices. We use Google Remarketing technology.
Remarketing allows us to retarget former users of our website with targeted advertising on third-party websites, including Google. Google determines
which specific users are addressed by temporarily linking the Google Analytics data described above with the individual IDs of users registered with Google,
thus enabling a cross-device approach. Advertising on the websites of third-party providers, including Google, also occurs through the use of cookies.
More information on Google Analytics and Google Remarketing is available at http://www.google.com. You can find the
Google privacy policy at https://policies.google.com/privacy?hl=en#information.
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG.
Hotjar
We use Hotjar to better understand the needs of our users and to optimise this service and their
experience. Hotjar is a technology service that helps us understand our users’ experience better
(e.g., how much time they spend on which pages, which links they click on, what they like and
dislike, etc.), and this allows us to build and maintain our service with user feedback. Hotjar collects
feedback from website visitors to enable us to analyse and improve the use of our website and any
errors that occur. Information is only processed if the user clicks on the corresponding button in the
feedback form or actively participates in a survey. Hotjar uses cookies and other technologies to
collect data about the behaviour of our users and their devices. This includes a device’s IP address
(processed during your session and stored in anonymised form), device screen size, device type
(unique device identifiers), browser information, geographic location (country only) and preferred
language for viewing our website. Hotjar stores this information in a pseudonymised user profile on
our behalf. Additional data such as email address and feedback text are only collected if the user
actively provides them. Hotjar is contractually obliged not to sell any of the data collected on our
behalf. More information is available in the ‘About Hotjar’ section of Hotjar’s support site.
More information is available at the “About Hotjar” section on Hotjar’s (support page ).
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG.
This website uses Google Tag Manager. This service allows website tags to be managed via an interface. Google Tag Manager only implements tags. This means that no cookies are used and no personal data is collected. Google Tag Manager triggers other tags which may collect data, but Google Tag Manager does not access this data.
Click here to be excluded from collection via Google Tag Manager.
You can find more information on Google Tag Manager at:
https://support.google.com/tagmanager
https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/
Our web pages use social plugins (”plugins”) from various social networks. These plugins allow you to share
content and recommend products, among other things. The plugins are deactivated as standard on the Schiesser
website and therefore do not send any data.
Please refer to the privacy notices of the relevant social networks or websites regarding the purpose and scope
of data collection and the further processing and use of the data by social networks as well as your rights and
setting options in this regard to protect your privacy. The links for this can be found further below.
Even if you are not registered with the social networks, data can be sent to the networks by websites with
active social plugins. An active plugin sets a cookie with an identifier each time the website is called up.
Since your browser sends this cookie without being asked every time you connect to a network server, the network
could in principle use it to create a profile of which web pages have been accessed by the user corresponding to
the identifier. It would also be possible to assign this identifier to a person later, for example upon
subsequent login to the social network.
We use the following plugins on our web pages:
Meta (Facebook, Instagram), X, Youtube, Pinterest, Ekomi
We use the visitor interaction pixel from Meta (formerly Facebook Pixel) on our website. The
provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2,
Ireland. However, according to Meta, the data collected is also transferred to the USA and other
third countries. This means that Meta pixels are integrated into our web pages. The integration
of the Meta pixel thus enables us to place and optimise targeted campaigns and measure the
reach of our marketing measures.
The use of this service is based on your consent in accordance with Art. 6 (1) lit. a GDPR and §
25 (1) TTDSG. Consent is revocable at any time..
When you visit our website, the Meta pixel establishes a connection between your browser and
the Meta server and sets a cookie. Meta thereby receives the information to the effect that our
website has been visited from your IP address. If you are a member of one of Meta’s social
networks, that network is able to link this information to your profile and use it for the targeted
display of adverts (e.g. Facebook Ads) unless you have objected to this in the data protection
settings in your profile.
We would like to point out that we, as the provider of this website, are not provided with any
information regarding the content of the transmitted data or their use by Meta. We are only
able to select which segments of Meta users (such as age, interests) are shown our advertising.
Here we use one of two Custom Audience methods with which no datasets and especially none
of our users’ email addresses – either in encrypted or unencrypted form – are transmitted to
Facebook. More information is available in the Facebook/Meta privacy policy at
www.facebook.com/about/privacy.
If you wish to object to the use of Facebook Website Custom Audiences, you may do so at
https: //www.facebook.com/ads/website_custom_audiences.
We use plugins of the social network facebook.com, a service provided by Facebook Inc.,
1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”).
When you access a page on our website that contains a Facebook plugin, your browser
establishes a direct connection to the Facebook servers. The content of the plugin is
transmitted by Facebook directly to your browser, which integrates it into the website.
By integrating the plugins, Facebook receives the information that a user has accessed the
corresponding page on our website. If you are logged into Facebook, Facebook can match
your visit with your Facebook account. When interacting with the plugins, for example by
pressing the “Like” button or adding a comment, your browser transmits this information
directly to Facebook, where it is then stored.
For the purpose and scope of data collection and further processing and use of the data by
Facebook and your rights and configuration options in this respect to protect your privacy,
please refer to the Facebook privacy policy. You can find this at
http://www.facebook.com/about/privacy.
If you do not want Facebook to collect data about you through our website, please log out of
Facebook before visiting our website.
Facebook Lead Ads
SCHIESSER uses Facebook Lead Ads to collect the contact information of interested
persons in order to send them SCHIESSER newsletters or other information in future. The
following information is collected here: Your full name and email address. We use the
information about your name to address you personally and the information about your
email address to send you the requested information by email. The data provided to us by
you via Facebook Lead Ads is used exclusively for the purpose of contacting you via the
provided email address. You can object to the storage and use of the information provided
via Facebook Lead Ads by sending your objection to our data protection officer.
We use plugins of the social network Instagram, which is operated by Instagram LLC, 1601 Willow Road, Menlo Park,
CA 94025, USA (”Instagram”).
If your are signed in to your Instagram account and link this website or its contents with your Instagram
profile, various data, some of it personal, will be transmitted to Instagram under certain circumstances in the
course of this process. This means that Instagram is also informed about your visit to our website. We would
hereby like to explicitly inform you that, as the provider of this website, we have little to no knowledge of
the categories of this data, the contents of this data or their further processing and usage by Instagram. More
information is available in the Instagram privacy policy at https://help.instagram.com/519522125107875?helpref=page_content.
Meta also processes your data in the USA. Meta and its companies (Facebook, Instagram)
have signed up to the EU-US Data Privacy Framework. This is intended to ensure that the
personal data of EU citizens in the USA is handled in compliance with data protection
regulations.
In addition, these companies also use the EU standard contractual clauses. These are
contracts provided by the EU, which are also intended to secure the transfer of data to
unsecure third countries (such as the USA).
The aforementioned instruments (privacy framework and standard contractual clauses)
oblige Meta to ensure that the European level of data protection is maintained when
processing data of European citizens, even if the data is processed in the United States.
More information is available at:
https://www.facebook.com/legal/terms/dataprocessing
https://www.facebook.com/privacy/policy
We have established joint responsibility with Meta for the cooperation described in this data
protection declaration in accordance with Art. 26 GDPR.
We are therefore jointly responsible with Meta Platforms Ireland Limited, 4 Grand Canal
Square, Grand Canal Harbour, Dublin 2, Ireland (Meta) for the collection and transmission of
data as part of this process. The joint responsibility applies to the creation of individualised
or suitable ads, as well as their optimisation and the delivery of commercial and
transactional messages (e.g. via Messenger).
The processing that takes place after collection and transfer is the sole responsibility of
Meta and is therefore not covered by joint processing. We are therefore unable to provide
any information in this regard.
The creation of reports and analyses in aggregated and anonymised form is conducted as
part of commissioned processing and is therefore our responsibility.
You can find information on the contract we have concluded with Facebook within the
framework of joint responsibility here: https://www.facebook.com/legal/controller_addendum.
Meta may serve as a point of contact for the exercise of data subjects’ rights (see Section
1.3) in accordance with the agreement.
We transmit the data within the scope of joint responsibility on the basis of the legitimate
interest in accordance with Art. 6 (1) lit. f GDPR.
Other recipients of the data, if applicable, as available in section 1.4 of the agreement.
We use plugins from the social network X, which is operated by Twitter International
Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
(“X”).
You can find the link to the X Privacy Policy here: X Privacy Policy.
If you use these X services and the ‘Re-Tweet’ service, the websites you visit are linked to
your X account and may also be displayed to other users. As part of this process, various
data, including personal data, is also transmitted by you to X. If you are registered with
Twitter, for example, the information that you have visited our website and possibly used
one of the plug-ins is also sent to X. We would like to explicitly state that we, as the provider
of this website, have little to no knowledge of the categories of this data, the content of this
data, or its further processing and use by X. More information is available in the X privacy
policy at https://X.com/privacy.
You can adjust your personal data protection settings for your X account in your account
settings at https://X.com/account/settings.
We use plugins of the social network Pinterest, which is operated by Pinterest Inc., 635 High Street,
Palo Alto, CA, USA (“Pinterest”).
You can find the link to the Pinterest privacy policy here: Pinterest privacy policy.
For the purpose and scope of data collection and further processing and use of the data by
Pinterest and your rights and configuration options in this respect to protect your privacy, please
refer to the Pinterest privacy policy: https://policy.pinterest.com/en/privacy-policy.
We use plugins of the website YouTube, which is operated by Google Inc., 1600 Amphitheater
Parkway, Mountain View, CA 94043, United States (“YouTube”).
If you are signed in to your YouTube account and link this website or its contents with your YouTube
profile, various data, some of it personal, is transmitted to Google under certain circumstances in
the course of this process. This means that Google is also informed about your visit to our website.
We would hereby like to explicitly inform you that, as the provider of this website, we have little to no
knowledge of the categories of this data, the contents of this data, or its further processing and
usage by Google. More information is available in the YouTube/Google privacy policy at:
https://policies.google.com/privacy?hl=en
To allow you to make product reviews, we have integrated review software from eKomi Ltd
(“eKomi”) into our online shop. eKomi allows you to leave a review describing your satisfaction with
our service and/or products. After you place your order, we will send you an email (possibly also via
eKomi) asking you to leave a review. For this purpose, eKomi is provided with personal data (legal
basis here is Art. 6 (1) lit. b or f GDPR). More detailed information on eKomi’s data protection is
available at www.ekomi.de/de/datenschutz. You are entitled to object this use of your data at any
time.
When leaving your review via eKomi, you can provide us with your email address so that we can
contact you at a later date. This allows us to respond to your feedback, answer your questions and
provide other forms of assistance, for example. We would like to inform you that providing your
email address and any other data is voluntary and subject to the privacy policy of eKomi. eKomi
bears exclusive responsibility for the handling of the personal data which you provide them with
directly.
ABlyft is a service of Conversion Expert GmbH, Zeppelinring 52c, 24146 Kiel, Germany
https://ablyft.com
ABlyft collects information on user behaviour in order to improve the user-friendliness of the website.
No personal data is stored on the platform. Data is only stored in aggregated form. User data (IDs etc.)
is not stored, however a cookie is set.
You are entitled to object to the use of ABlyft at any time by clicking on the following link:
schiesser.com?ablyft_opt_out=true
The legal basis for this processing is your consent in accordance with Art. 6 (1) lit. a GDPR and § 25 (1)
TTDSG.
Our website uses the services of Supermetrics of the Supermetrics Group, Kaivokatu 10 A, 00100
HELSINKI, Finland. The service is used to collate various marketing data.
More information about Supermetrics and the data processed when using Supermetrics is available at
https://supermetrics.com/privacy-policy
Our website uses cookies/advertising IDs for advertising purposes. This allows us to show our advertisements to visitors who are interested in our products on partner websites, in apps and in emails. Retargeting technologies use cookies or advertising IDs and show advertisements according to your previous browsing behaviour. Please visit the following websites to overrule these interest-based advertisements:
We can exchange information such as technical identifiers from your registration data on our website or our CRM system with reliable advertising partners. Therefore, your devices and/or environments can be connected and you can be offered seamless user experience with the devices and environments you use. Please refer to the privacy policy, which you can find on the aforementioned platforms for more details on these connectivity options or the following comments.SCHIESSER processes certain data about the online activities of users on this website in order to conduct personalised advertising campaigns. This data may include online identifiers (e.g. cookie ID / mobile advertising ID), information about specific pages visited, products viewed or placed in the shopping cart together with timestamps and purchased, as well as technical device and search program details. SCHIESSER commissions RTB House GmbH, an advertising technology company, as a third-party subcontractor to conduct advertising campaigns based on this data and to display personalised ads to users. Insofar as this data is “personal data” within the scope of the GDPR, SCHIESSER acts as the controller and RTB House GmbH as the processor. More information on RTB House retargeting technology is available at: https://www.rtbhouse.com/privacy- center
nonstoppartner.net smartTracking is provided by Hearts & Science München GmbH, Blumenstraße
28, 80331 Munich, Germany. You are entitled to object to the collection and analysis of your data by
means of this tool by using the opt-out process available
here.
Schiesser processes your personal data for the purpose of conducting an affiliate marketing
campaign. This enables us to track which third-party provider of websites, apps or other
technologies has referred potential customers to our websites and apps (‘referrer’) and to pay them
a commission in return for these referrals. In this context, we are pursuing a legitimate interest in
conducting an online advertising campaign which is subject to performance-based remuneration.
We work with Awin, who help us conduct these affiliate marketing campaigns. The Awin privacy
policy is available here. It contains information about your rights in relation to data processing by
Awin. Awin may receive a restricted profile relating to you in some cases. However, this does not
reveal your identity, your online behaviour or any other personal traits. This profile is used solely for
the purpose of tracking whether a forwarding was started on one device and completed on another
device. In some cases, Awin and the potential customer’s referrer may receive and process your
personal data in order to implement the affiliate marketing campaign together with us. Equally, we
receive the personal data of potential customers from Awin and the referrers, which can be broken
down into the following categories: cookie data, data regarding the website, app or technology from
which a potential customer was referred to us and technical information about the device you use.
When you select a voucher offer that is currently of interest to you, we transmit the pseudonymised
and encrypted hash value of your email address and your IP address to Sovendus GmbH,
Moltkestr. 11, 76133 Karlsruhe (Sovendus) (Art. 6 (1) lit. f GDPR). The pseudonymised hash value
of the email address is used to take into account any objection to advertising by Sovendus (Art. 21
(3), Art. 6 (1) lit. c GDPR). Sovendus uses the IP address exclusively for data security purposes
and, as a rule, anonymises it after seven days (Art. 6 (1) lit. f GDPR). We also transmit the order
number, order value, currency, session ID, coupon code and timestamp in pseudonymised form to
Sovendus for the purpose of invoicing (Art. 6 (1) lit. f GDPR). If you are interested in a voucher offer
from Sovendus, there is no advertising objection assigned to your email address and you click on
the voucher banner only displayed in this instance, we transmit your title, name and email address
in encrypted form to Sovendus for the preparation of the voucher (Art. 6 (1) lit. b and f GDPR).
For more information on the processing of your data by Sovendus, please see the online privacy
notice at https://online.sovendus.com/en/online-privacy-notice/.
During the order process, we transmit collected personal data about the solicitation, execution and
termination of this business relationship as well as data about non-contractual or fraudulent
behaviour, if applicable, to CRIF Bürgel GmbH, Leopoldstraße 244, 80807 Munich, Germany.
The legal basis of this transmission is Art. 6 (1) sentence 1 (b) and (f) GDPR. The data
communication with CRIF Bürgel GmbH also ensures compliance with legal obligations to perform
credit checks (§§ 505a and 506 German Civil Code - BGB).
CRIF Bürgel GmbH processes the received data and also uses it for profiling (scoring) in order to
provide its contractual partners in the European Economic Area and Switzerland, plus any
applicable third countries (if these countries have been recognised by the European Commission by
means of an adequacy decision), with information about the creditworthiness of natural persons,
among other things. More detailed information about the activities of CRIF Bürgel GmbH is available
in their information leaflet or online at https://www.crif.com/privacy/.
You can also pay with us using the Klarna service. The provider of this service is Klarna AB, Sveavägen
46, 111 34 Stockholm, Sweden.
If you wish to use Klarna, the transfer of various personal data from you to Klarna is necessary for the
fulfilment of the contract between you and SCHIESSER (legal basis is therefore Art. 6 (1) sentence 1 lit. b
GDPR). In particular, this includes your name, address, date of birth, gender, email address, telephone
number and data relating to your order. This data is used in particular for identity and credit checks,
payment administration and fraud prevention by Klarna.
Klarna uses various scoring values to decide whether your purchase can be made on account. Various
recognised mathematical-statistical procedures are used for this purpose. We do not know which
procedures are used, nor do we have any influence on the type and purpose of the processing of your
data by Klarna. If you have any questions about the processing of your data by Klarna or if you wish to
object to the processing of your data by Klarna, please contact Klarna directly.
Details on the processing of your personal data by Klarna are available in Klarna’s privacy policy. You
can find these at https://www.klarna.com/de/datenschutz/.
Klarna also uses cookies to optimise the Klarna checkout solution. The legal basis for this processing is
your consent in accordance with Art. 6 (1) lit. a GDPR and § 25 (1) TTDSG.
Klarna cookies remain on your end device until you delete them. Details on the use of Klarna cookies
are available at: https://cdn.klarna.com/1.0/shared/content/policy/cookie/de_de/checkout.pdf.
Stored personal data is erased if you revoke your permission for us to store it, if the knowledge of that information is no longer necessary for the purpose for which it had been stored, or if the storage of that information is not permitted for other legal reasons, unless legal retention obligations forbid erasure, in which case the data is blocked rather than erased.
You are entitled in particular to request information on the purpose of processing, the category of
the personal data, the category of recipient to whom your data has been or is to be disclosed, the
planned storage period, the right to correction, deletion, restriction of processing or objection, the
right of complaint, the source of your data if it has not been collected by us, as well as information
on automated decision-making including profiling and, if applicable, material information relating to
their details.
If any of your data stored by us is inaccurate, you may of course demand correction or completion
of your data.
You may also request the erasure of your data unless processing is required to exercise the right to
free speech and information, to comply with legal obligations, for reasons of public interest or to
assert, enforce or defend against legal claims. We grant this request for erasure without delay, but
we of course need to observe any applicable legal retention obligations.
You are also entitled to request the restriction of the processing of your personal data insofar as the
accuracy of the data is disputed by you, the processing is unlawful but you object to its erasure, or
we no longer require the data but you need it for the assertion, exercise, or defence of legal claims,
or you have objected to the processing in accordance with Art. 21 GDPR.
If you have given us your consent to use your data, you are entitled to revoke it at any time with
future effect.
You also have a right to data portability. Subject to a request from you, we provide you with your
data in a machine-readable format.
Right to object: Insofar as your personal data is processed on the basis of legitimate interests in
accordance with Art. 6 (1) (1) (f) GDPR, you have the right to object to the processing of your
personal data in accordance with Art. 21 GDPR, provided that there are reasons for doing so that
arise from your particular situation or the objection is directed against direct mail. In the latter case,
you have a general right of objection, which is implemented by us without specifying a special
situation. If you wish to object, in particular to direct advertising, please send your objection to the
data protection officer via the contact details specified here.
Please send any information requests, information enquires, requests for erasure, etc. or objections
to data processing to our data protection officer via the contact details given below.
You have the right to complain to a data protection supervisory authority if you do not consent to our
data processing.
The competent supervisory authority for data protection for us is:
The State Commissioner for Data Protection and Freedom of Information for Baden-Württemberg
(Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg)
Postfach 10 29 32
70025 Stuttgart
We would however appreciate you speaking to us first so that we can clarify any ambiguities or
uncertainties together.
If you use external links which are advertised on our web pages, our privacy policy shall not extend
to these links.
If we provide links to other websites, we strive to ensure that they also meet our standards of data
protection and security. However, we have no influence over whether other providers comply with
data protection and security regulations. Therefore, please also refer to the data protection
declarations provided on the websites of other providers.
Your data is not passed on to third parties without a legal basis. We also do not transfer your data to a third country unless you yourself are located in a third country or the fulfilment of contracts requires the transfer of your data to a third country. The only exceptions here are the analytical tools mentioned in this privacy policy (see Items 8 and 9).
In principle, persons under 18 years of age should not transmit any personal data to us without the consent of their parent or guardian. We would also like to expressly inform you that we do not explicitly request personal data from children and young people, nor do we collect it or transmit it to third parties.
We maintain up-to-date technical measures to ensure data security, in particular to protect your personal data from risks during data transmission and from third parties gaining knowledge of it. These are adapted in line with the current state of technology.
We reserve the right to change our security and data protection measures if this becomes necessary due to technical developments, changes in our processing or changes in the legal situation. In such cases, we adapt our data protection information accordingly. Therefore, please ensure that you always have the latest version of our privacy policy.
Automated decision-making, including profiling, is not used.
If you have further questions related to how your personal data is collected, processed and used,
please contact our data protection officer:
SCHIESSER GmbH
Data Protection Officer
Schützenstrasse 18
78315 Radolfzell
Germany
or via email:
datenschutz@schiesser.com
SCHIESSER AG takes data protection and the protection of your personal data very seriously. Personal data also includes video surveillance data. In the following, we would like to provide you with comprehensive information about the processing of your personal data in the context of video surveillance in our stores, even beyond the legal requirements.
SCHIESSER GmbH
Schützenstrasse 18
Tel.: +49 (0) 7732 / 90-0
78315 Radolfzell
http://www.schiesser.com
You can reach the SCHIESSER data protection officer using the following contact details:
By email: datenschutz@schiesser.com
By post:SCHIESSER GmbH
Data Protection Officer
Schützenstrasse 18
78315 Radolfzell
Protection against theft and vandalism, proof of damage to regulatory bodies (insurance companies, etc.), facilitating the prosecution of criminal offenses, protecting employees from assaults, exercising domiciliary rights, defending and exercising legal claims The legal basis in each case is Art. 6 (1) lit. f GDPR.
Only video data, i.e. image recordings, are recorded as categories of personal data.
The following legitimate interests (Art. 6 (1) lit. f GDPR) of the operator are pursued: Protection against theft and vandalism, proof of damage to regulatory bodies (insurance companies, etc.), facilitating the prosecution of criminal offenses, protecting employees from assaults, exercising domiciliary rights, defending and exercising legal claims
The video recordings are usually stored for 48 hours. If there is a need for further storage due to the aforementioned incidents, this period is extended as required.
The video data may be forwarded to the following recipients for the aforementioned purposes (e.g. in the event of a robbery): Law enforcement authorities, regulatory bodies (insurance companies, etc.), internal SCHIESSER departments, SCHIESSER service providers
There are no plans to transfer the video data to a third country.
See above, section 20.
The exclusive source of the personal data collected from you in the context of video surveillance is the video surveillance itself.
The operator has a legitimate interest in collecting, processing and using the video data. If you do not wish the data to be made available, a visit to the store is not possible.
The companies listed below operate the application platform and the subsequent applicant management up to the establishment of the employment relationship and personnel management as joint controllers in accordance with Art. 26 EU General Data Protection Regulation (GDPR). Information on this is provided below.
SCHIESSER Gesellschaft m.b.h.
Moosfeldstrasse 1
A-5101 Bergheim
SCHIESSER GmbH
Schützenstrasse 18
78315 Radolfzell
SCHIESSER International ApS
Automatikvej 1
DK-2860 Søborg,
SCHIESSER International BV
Stephanie Square Center
Avenue Louise 65
Box 11
1050 Brussels – Bruxelles
and
SCHIESSER International Nederland B.V.
Joop Geesinkweg 901-999
1114AB Amsterdam
as the “controller”
The aforementioned controllers have defined the following areas of activity as joint controllers with regard
to the application process:
Impact area 1:
Should you have any further questions regarding the collection, processing and use of your personal data,
please contact our data protection officer by email at datenschutz@schiesser.com.
By post:
SCHIESSER GmbH
Data Protection Officer
Schützenstrasse 18
78315 Radolfzell
Germany
We use an applicant management system from d.vinci HR-Systems GmbH, Nagelsweg 37-39, 20097
Hamburg, to efficiently conduct application procedures, which operates applicant management as a
processor in the meaning of Art. 4 (8) GDPR. An order processing contract has been concluded with the
provider in accordance with Art. 28 GDPR, which ensures compliance with data protection regulations.
We remain your first point of contact for exercising your rights as a data subject and for handling the
application process. You may contact us or the data protection officer directly using the details provided
above.
The subject of data protection is the processing of personal data, in this case in the context of applicant
management. This includes, in accordance with Art. 4 (1) GDPR, all information relating to an identified or
identifiable natural person (hereinafter “data subject”) which is necessary for the decision on the
establishment of an employment relationship or, after the establishment of the employment relationship,
for its implementation or termination, in accordance with Art. 6 (1) lit. b GDPR.
As part of the application process and/or the use of the system, processing activities may also take place
that are either based on legitimate interest in accordance with Art. 6 (1) lit. f) GDPR or on the basis of your
consent in accordance with Art. 6 (1) lit. a GDPR. Processing activities for which there is a legal obligation
to process or a public interest are also considered, Art. 6 (1) lit. c) and e) GDPR, such as in the context of
criminal prosecution or investigations by state authorities. The individual settings in your web browser, the
configuration of the corresponding cookie settings and your user behaviour allow you to determine and
control the scope of processing yourself.
If your application is unsuccessful, you may be included in our talent pool if you click on the Contact Us
button. If a similar or otherwise suitable position is open, we are then able to contact you. Admission to the
talent pool takes place on a voluntary basis.
The legal basis for this is your consent within the meaning of Art. 6 (1) lit. a) GDPR in the inclusion in the
talent pool. You may revoke this consent to inclusion in the pool at any time with effect for the future.
Please contact our data protection officer using the contact details provided above. We also write to you
after 2 years to ask whether you would still like to be part of the talent pool.
Your data is stored for the duration of the application process and in accordance with the legitimate retention periods after completion of the application process. Data is deleted 6 months after rejection and at the latest after termination of your employment. After the retention period expires, the data is completely anonymised. The processing of anonymised data records is not subject to the material scope of the data protection regulations, so that anonymised data can be processed for statistical and analytical purposes, for the creation of market studies or for product development.
We use Messenger for communication purposes and therefore ask you to observe the following
information on the functionality of Messenger, on encryption, on the use of communication metadata
and on your options to object.
You are also able to contact us by alternative means, e.g. by telephone or email. Please use the
contact options provided to you or the contact options provided within our online offer.
In the case of end-to-end encryption of content (i.e. the content of your message and attachments),
we would like to point out that the communication content (i.e. the content of the message and
attached images) is encrypted from end to end. This means that it is not possible to view the content
of the messages, not even by the Messenger providers themselves. You should always use an up-to-
date version of Messenger with encryption enabled to ensure that the message content is encrypted.
However, we would also like to point out to our communication partners that although the providers
of the Messenger are not able to view the content, they are able to find that out and when
communication partners communicate with us and that technical information about the device used
by the communication partners and, depending on the settings of your device, location information
(metadata) is also processed.
The aforementioned companies operate the application platform and the subsequent applicant
management process up to the establishment of the employment relationship as joint controllers in
accordance with Art. 26 EU General Data Protection Regulation (GDPR).
The controllers have defined the purposes and means of the data processing they perform jointly for this
purpose.
A joint controllership agreement in accordance with Art. 26 GDPR has been concluded between the
companies named above. This contract sets out the specific obligations, rights and responsibilities of each
company when processing personal data jointly in the context of the processing in question.
Please find below information in accordance with Art. 26 (2) sentence 2 GDPR on the main content of this
agreement.